Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-113173 EXPLOITDB text VERIFIED
W3infotech - Authentication Bypass
by ViRuS_HiMa
CVE-2009-4120 EXPLOITDB text VERIFIED
Quick.Cart 3.4 - Cross-Site Request Forgery via Admin Orders-Delete Action
Multiple cross-site request forgery (CSRF) vulnerabilities in Quick.Cart 3.4 allow remote attackers to hijack the authentication of the administrator for requests that (1) delete orders via an orders-delete action to admin.php, and possibly (2) delete products or (3) delete pages via unspecified vectors.
by Alice Kaerast
CVE-2009-4120 EXPLOITDB text VERIFIED
Quick.Cart 3.4 - Cross-Site Request Forgery via Admin Orders-Delete Action
Multiple cross-site request forgery (CSRF) vulnerabilities in Quick.Cart 3.4 allow remote attackers to hijack the authentication of the administrator for requests that (1) delete orders via an orders-delete action to admin.php, and possibly (2) delete products or (3) delete pages via unspecified vectors.
by Alice Kaerast
CVE-2009-4220 EXPLOITDB text VERIFIED
PointComma < 3.8b2 - Remote Code Execution via pcConfig[smartyPath] Parameter
PHP remote file inclusion vulnerability in includes/classes/pctemplate.php in PointComma 3.8b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pcConfig[smartyPath] parameter.
by cr4wl3r
CVE-2009-4085 EXPLOITDB text VERIFIED
PHP Traverser 0.8.0 - Remote Code Execution
PHP remote file inclusion vulnerability in assets/plugins/mp3_id/mp3_id.php in PHP Traverser 0.8.0 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[BASE] parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by cr4wl3r
CVE-2009-4082 EXPLOITDB text VERIFIED
Outreach Project Tool < 1.2.7 - Remote Code Execution via CRM_path Parameter
PHP remote file inclusion vulnerability in forums/Forum_Include/index.php in Outreach Project Tool (OPT) 1.2.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_path parameter.
by cr4wl3r
EIP-2026-110394 EXPLOITDB text VERIFIED
OSI Codes PHP Live! Support 3.1 - Remote File Inclusion
by Don Tukulesto
CVE-2009-4779 EXPLOITDB text VERIFIED
NukeHall <= 0.3 - Remote Code Execution via spaw_root Parameter
Multiple PHP remote file inclusion vulnerabilities in NukeHall 0.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter to (1) blocks.php, (2) messages.php, and (3) stories.php in admin/modules/.
by cr4wl3r
CVE-2009-4223 EXPLOITDB text VERIFIED
KR-Web < 1.1 - Remote Code Execution via DOCUMENT_ROOT Parameter
PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web 1.1b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.
by cr4wl3r
CVE-2008-4864 EXPLOITDB text VERIFIED
Python 1.5.2-2.5.1 - Integer Overflow in imageop.c crop Function
Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different vulnerability than CVE-2007-4965 and CVE-2008-1679.
by Chris Evans
CVE-2009-3576 EXPLOITDB text VERIFIED
Autodesk Softimage 7.x and Softimage XSI 6.x - Remote Code Execution via Scene Table of Contents Script_Content Element
Autodesk Softimage 7.x and Softimage XSI 6.x allow remote attackers to execute arbitrary JavaScript code via a scene package containing a Scene Table of Contents (aka .scntoc) file with a Script_Content element, as demonstrated by code that loads the WScript.Shell ActiveX control.
by Core Security
CVE-2009-3578 EXPLOITDB text VERIFIED
Autodesk Maya 6.5-2010 and Alias Wavefront Maya 6.5-7.0 - Remote Code Execution via MEL Script Nodes
Autodesk Maya 8.0, 8.5, 2008, 2009, and 2010 and Alias Wavefront Maya 6.5 and 7.0 allow remote attackers to execute arbitrary code via a (1) .ma or (2) .mb file that uses the Maya Embedded Language (MEL) python command or unspecified other MEL commands, related to "Script Nodes."
by Core Security
EIP-2026-108805 EXPLOITDB text VERIFIED
Joomla! Component mygallery - 'farbinform_krell' SQL Injection
by Manas58 BAYBORA
EIP-2026-108174 EXPLOITDB text VERIFIED
Joomla! 1.5.x - 404 Error Page Cross-Site Scripting
by MustLive
CVE-2009-4019 EXPLOITDB text VERIFIED
MySQL 5.0.x < 5.0.88 and 5.1.x < 5.1.41 - Authenticated Denial of Service via SELECT Subquery Error Handling
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.
by Shane Bester
CVE-2009-4019 EXPLOITDB text VERIFIED
MySQL 5.0.x < 5.0.88 and 5.1.x < 5.1.41 - Authenticated Denial of Service via SELECT Subquery Error Handling
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.
by Shane Bester
CVE-2009-4118 EXPLOITDB text VERIFIED
Cisco VPN client for Windows <5.0.06.0100 - DoS
The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows before 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONTROLLER_CONNECT error, which allows local users to cause a denial of service (service crash and VPN connection loss) via a manual start of cvpnd.exe while the cvpnd service is running.
by Alex Hernandez
CVE-2009-4059 EXPLOITDB text VERIFIED
JoomClip - SQL Injection via Cat Parameter
SQL injection vulnerability in the JoomClip (com_joomclip) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a thumbs action to index.php.
by 599eme Man
CVE-2009-4032 EXPLOITDB text VERIFIED
Cacti 0.8.7e - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7e allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) graph.php, (2) include/top_graph_header.php, (3) lib/html_form.php, and (4) lib/timespan_settings.php, as demonstrated by the (a) graph_end or (b) graph_start parameters to graph.php; (c) the date1 parameter in a tree action to graph_view.php; and the (d) page_refresh and (e) default_dual_pane_width parameters to graph_settings.php.
by Moritz Naumann
CVE-2009-4056 EXPLOITDB text VERIFIED
Betsy CMS 3.5 - Path Traversal via Admin Popup Parameter
Directory traversal vulnerability in admin/popup.php in Betsy CMS 3.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the popup parameter.
by MizoZ
EIP-2026-115716 EXPLOITDB text VERIFIED
Microsoft Internet Explorer 6/7 - CSS Handling Denial of Service
by K4mr4n_st
CVE-2009-0689 EXPLOITDB text VERIFIED
K-Meleon 1.5.3 - Heap-Based Buffer Overflow via Large Precision Value in printf Format Argument
Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
by Maksymilian Arciemowicz
CVE-2009-0689 EXPLOITDB text VERIFIED
K-Meleon 1.5.3 - Heap-Based Buffer Overflow via Large Precision Value in printf Format Argument
Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
by Maksymilian Arciemowicz
EIP-2026-115278 EXPLOITDB text VERIFIED
Foxit Reader - COM Objects Memory Corruption Remote Code Execution
by mrx
CVE-2009-4060 EXPLOITDB text VERIFIED
CubeCart < 4.3.7 - SQL Injection via productId Parameter
SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart before 4.3.7 remote attackers to execute arbitrary SQL commands via the productId parameter.
by Sangte Amtham